Start preparing for your Next Exam | Use coupon – TOGETHER | Avail 30% discount

Aruba Certified ClearPass Associate (ACCA) Sample Questions

  1. Home
  3. Aruba Certified ClearPass Associate (ACCA) Sample Questions
Aruba Certified ClearPass Associate (ACCA) Sample Questions

The Aruba Certified ClearPass Associate Exam tests your fundamental information on ClearPass Policy Manager and ClearPass Guest. This test tests your abilities on the most proficient method to arrange ClearPass as a validation server for both corporate clients and visitors. It likewise tests your fundamental information on gadget profiling and stance checks.
At least a half year of experience in sending network answers for the endeavor.

Advanced Sample Questioned

Which of the following is not a ClearPass authentication method?

  • A. EAP-TLS
  • B. RADIUS
  • C. LDAP
  • D. SMTP

Answer: D. SMTP

Explanation: SMTP is not a ClearPass authentication method. SMTP is a protocol used for sending email messages.

Which of the following is not a ClearPass Policy Manager enforcement profile type?

  • A. RADIUS
  • B. EAP
  • C. DHCP
  • D. HTTP

Answer: C. DHCP

Explanation: DHCP is not a ClearPass Policy Manager enforcement profile type. DHCP is a protocol used for assigning IP addresses to network devices.

Which of the following is a function of a ClearPass Guest module?

  • A. Enforcing security policies for corporate-owned devices.
  • B. Providing single sign-on (SSO) authentication.
  • C. Issuing temporary access credentials for guests.
  • D. Managing network infrastructure devices.

Answer: C. Issuing temporary access credentials for guests.

Explanation: ClearPass Guest is a module that enables temporary guest access to a network. It can issue temporary access credentials to guests and manage their access.

What is the purpose of the ClearPass Onboard module?

  • A. To provide single sign-on (SSO) authentication.
  • B. To onboard corporate-owned devices to a network.
  • C. To authenticate and authorize guest access.
  • D. To enforce security policies for network devices.

Answer: B. To onboard corporate-owned devices to a network.

Explanation: ClearPass Onboard is a module that automates the process of onboarding corporate-owned devices to a network. It enables users to easily configure devices for secure access to the network.

Which of the following is not a ClearPass Insight feature?

  • A. Network threat detection
  • B. Application usage reporting
  • C. Device profiling
  • D. User authentication

Answer: D. User authentication

Explanation: User authentication is not a ClearPass Insight feature. ClearPass Insight provides network analytics and reporting features, such as network threat detection, application usage reporting, and device profiling.

Which of the following is the default port used for RADIUS authentication?

  • a) 80
  • b) 1812
  • c) 1813
  • d) 443

Answer: b) 1812

Explanation: The default port used for RADIUS authentication is 1812.

Which of the following is a component of ClearPass Guest?

  • a) Guest Manager
  • b) Policy Manager
  • c) Access Tracker
  • d) Event Viewer

Answer: a) Guest Manager

Explanation: Guest Manager is a component of ClearPass Guest that provides guest access management.

Which of the following is a policy enforcement action in ClearPass Policy Manager?

  • a) Allow
  • b) Block
  • c) Redirect
  • d) All of the above

Answer: d) All of the above

Explanation: All of the above options are policy enforcement actions in ClearPass Policy Manager.

Which of the following is a type of authentication method supported by ClearPass Policy Manager?

  • a) 802.1X
  • b) Captive Portal
  • c) MAC authentication
  • d) All of the above

Answer: d) All of the above

Explanation: ClearPass Policy Manager supports all of the above authentication methods.

Which of the following is a component of ClearPass OnGuard?

  • a) OnGuard Agent
  • b) Policy Manager
  • c) Guest Manager
  • d) Event Viewer

Answer: a) OnGuard Agent

Explanation: OnGuard Agent is a component of ClearPass OnGuard that provides endpoint health checks and posture assessment.

Basic Sample Questions

1.) Which licenses are remembered for the underlying starter pack for ClearPass?

A. 10 ClearPass Guest licenses, 10 ClearPass OnGuard licenses, and 10 ClearPass Onboard licenses
B. 10 ClearPass Enterprise licenses
C. 25 ClearPass Policy Manager licenses
D. 25 ClearPass Profiler licenses
E. 25 ClearPass Enterprise licenses

Right Answer: E

2.) What happens when a client effectively validates but matches no Enforcement Policy rules?

A. no job is applied to the device
B. logon profile is applied to the device
C. default Enforcement profile is applied
D. visitor rule is applied to the device
E. default rule is applied to the device

Right Answer: C

Explanation: MAC Auth Service for APs, Printers

3.) When Active Directory is added as a confirmation source, what should the organization be for the Active Directory receptacle DN?

A. admin.domain.com
B. domain.com\admin
C. domain.com
D. [email protected]
E. admin\domain.com

Right Answer: D

4.) When requirement activity is utilized in ClearPass to bob a client?

A. RADIUS CoA
B. VLAN attribute
C. ACL
D. RADIUS VSA
E. Webpage redirect

Right Answer: A

Explanation: MAC Auth Service for AP’s, Printers, Etc

5.) A ClearPass deployment should be intended to decide if a client verifying is a HR office worker in the Active Directory Server and whether the client’s gadget is solid.
Which strategy administration parts will the organization chairman need to utilize?

A. Posture, Authentication and Authorization
B. Posture and Firewall Roles
C. Pose and Onboard
D. Confirmation and Authorization
E. Posture, Authentication and Onboarding

Right Answer: A

6.) What is Radius CoA utilized for?

A. to approve a host MAC against a white and a boycott
B. to compel the client to re-validate after wandering to another regulator
C. to confirm clients or gadgets prior to giving them admittance to an organization
D. to send messages to the NAD/NAS to change a client’s meeting status
E. to apply firewall arrangements in view of validation qualifications

Right Answer: D

7.) Which proclamation most precisely portrays how clients with Active Directory qualifications verify with ClearPass when Active Directory is utilized as a verification hotspot for a 802.1x help in ClearPass?

A. A Kerberos demand is sent from the Network Access Device to ClearPass which starts a RADUIS solicitation to the AD server.
B. A RADIUS demand is sent from the Network Access Device to the AD server which speaks with ClearPass.
C. A LDAP demand is sent from the Network Access Device to the AD server which speaks with ClearPass.
D. A LDAP demand is sent from the Network Access Device to ClearPass which starts a RADIUS solicitation to the AD server.
E. A RADIUS demand is sent from the Network Access Device to the ClearPass which speaks with the AD server.

Right Answer: C

8.) Which most precisely portrays the First Applicable rule assessment calculation in Enforcement Policies?

A. Each standard is checked and when a match is found, the Enforcement profile doled out to that standard is applied and the standard matching stops.
B. All rules are checked and assuming that there is no match, no Enforcement profile is applied.
C. Each standard is checked and when a match is found, the Enforcement profile relegated to that standard is applied. alongside the default Enforcement profile.
D. All rules are checked for any matching principles and their individual Enforcement profiles are applied.

Right Answer: D

9.) What is the reason for involving a job planning strategy in a 802.1x help with Active Directory as the verification source?

A. to decipher and join AD credits into ClearPass jobs
B. to send jobs from ClearPass to the AD client to refresh a client’s gathering participation
C. to empower credits as jobs straightforwardly without requiring job planning rules
D. to send Aruba firewall jobs back to the Aruba Network Access Device
E. to send subtleties of a client’s association with the AD client to store in its data set

Right Answer: B

10.) Which proclamation most precisely portrays how clients with Active Directory accreditations validate with ClearPass when Active Directory is utilized as a confirmation hotspot for a 802.1x help in ClearPass?

A. A Kerberos demand is sent from the Network Access Device to ClearPass which starts a RADUIS solicitation to the AD server.
B. A RADIUS demand is sent from the Network Access Device to the AD server which speaks with ClearPass.
C. A LDAP demand is sent from the Network Access Device to the AD server which speaks with ClearPass.
D. A LDAP demand is sent from the Network Access Device to ClearPass which starts a RADIUS solicitation to the AD server.
E. A RADIUS demand is sent from the Network Access Device to the ClearPass which speaks with the AD server.

Right Answer: C

11.) Which most precisely portrays the First Applicable rule assessment calculation in Enforcement Policies?

A. Each standard is checked and when a match is found, the Enforcement profile relegated to that standard is applied and the standard matching stops.
B. All rules are checked and in the event that there is no match, no Enforcement profile is applied.
C. Each standard is checked and when a match is found, the Enforcement profile doled out to that standard is applied. alongside the default Enforcement profile.
D. All rules are checked for any matching principles and their individual Enforcement profiles are applied.

Right Answer: D

12.) What is the reason for involving a job planning strategy in a 802.1x help with Active Directory as the verification source?

A. to interpret and join AD ascribes into ClearPass jobs
B. to send jobs from ClearPass to the AD client to refresh a client’s gathering participation
C. to empower credits as jobs straightforwardly without requiring job planning rules
D. to send Aruba firewall jobs back to the Aruba Network Access Device
E. to send subtleties of a client’s association with the AD client to store in its data set

Right Answer: B

13.) What is the motivation behind a visitor self-enrollment page in ClearPass?

A. to permit workers to get their own gadgets safely associated with the organization
B. to permit workers for hire to make their own records in Active Directory
C. to permit workers’ supporters to make represents their visitors
D. to permit representatives to get their corporate gadgets on the organization without any problem
E. to permit visitor clients to make a login represent the web login page

Right Answer: B

Explanation: Guest self-enrollment permits a head to redo the interaction for visitors to make their own guest accounts. Self-enrollment is additionally alluded to as self-provisioned admittance

Refer to- Customizing Guest Self-Registration

14.) What is the motivation behind the pre-auth check during visitor verification?

A. for the NAD gadget to do an interior validation check prior to sending the accreditations to ClearPass
B. for the NAD gadget to make sure that ClearPass is dynamic prior to sending it the RADIUS demand
C. for ClearPass to do an inward verification check before the NAS login occurs
D. for the client gadget to do an inner second look just in case before the NAS login happens
E. for the client gadget to make sure that ClearPass is dynamic prior to sending it the accreditations

Right Answer: C

Explanation: The manner in which NAS gadgets like remote regulators do validation on outside hostage entrances just permits standard oddball message dealing with like “verification fizzled”. The pre-auth check permits CPPM to give progressed mistake treatment of an oddball like “your time limit has been reached” before a client signs in. It is to do an end gone around restricted blunder giving of NAS gadgets on outer hostage entrances.

Refer to- why use pre-auth check?

15.) Where is the web login page made in the ClearPass UI?

A. WebAuth Service
B. Captive Portal Profile
C. ClearPass Policy Manager
D. Visitor Login Service
E. ClearPass Guest

Right Answer: E

16.) Which activities are important to set up a ClearPass visitor hostage gateway web login page to validate visitor clients? (Select three.)

A. Arrange the visitor pre-verification job on ClearPass.
B. Select the client login checkbox in ClearPass Guest.
C. Make a web login page in ClearPass Guest.
D. Make Guest Service in ClearPass strategy Manager.
E. Divert Aruba Controller URL to ClearPass server web login page.

Right Answer: ABD

Refer to- IAP + ClearPass Guest Captive Portal

Aruba Certified ClearPass Associate (ACCA) Practice Tests
Menu